Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/75e36c-db1f-483e-b0ef-229051879b74/1/f1D9Mw---UyC8yks9qJjwYpqq3A.roa
File: f1D9Mw---UyC8yks9qJjwYpqq3A.roa (raw, json)
Hash identifier: s3VfIZN6NCG9qYbOlTVwNVhkarIn7ynVSLUuCCUFrYc=
Subject key identifier: 7F:50:FD:33:0F:BE:F9:4C:82:F3:29:2C:F6:A2:63:C1:8A:6A:AB:70
Certificate issuer: /CN=ae29751a0ac81a657190546ea4780cd86140dc9f
Certificate serial: 063263CA
Authority key identifier: AE:29:75:1A:0A:C8:1A:65:71:90:54:6E:A4:78:0C:D8:61:40:DC:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ril1GgrIGmVxkFRupHgM2GFA3J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/75e36c-db1f-483e-b0ef-229051879b74/1/f1D9Mw---UyC8yks9qJjwYpqq3A.roa
Signing time: Sat 01 Jan 2022 13:04:51 +0000
ROA not before: Sat 01 Jan 2022 13:04:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 5.252.0.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103965642 (0x63263ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae29751a0ac81a657190546ea4780cd86140dc9f
Validity
Not Before: Jan 1 13:04:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f50fd330fbef94c82f3292cf6a263c18a6aab70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ec:2a:8f:86:25:d5:f5:31:8d:a1:bb:4c:cb:
74:2e:ff:75:09:9e:ae:f8:f1:bf:45:56:22:84:6b:
a7:e2:92:ca:62:87:bc:99:13:1d:fe:1e:2f:06:1d:
f3:68:28:7b:07:6e:3e:77:fc:80:d1:5f:fa:e6:cf:
d5:71:af:50:e9:fa:09:67:f0:ea:70:43:1c:3a:f2:
73:ab:bf:34:14:06:d9:45:63:34:76:db:fb:ff:80:
38:70:40:cf:14:62:8a:4e:6a:78:40:f6:d5:54:5c:
0f:dd:20:79:0a:36:aa:7b:da:8d:78:7d:69:23:d7:
6e:1a:4f:30:8b:8f:3b:d7:d0:12:33:f6:24:b4:e3:
7a:1b:ee:87:9f:3f:cf:f0:12:b4:88:e5:ea:a9:c1:
47:3f:72:96:32:57:de:ad:25:bf:fd:7a:6c:61:35:
81:b4:59:97:46:2b:72:d0:e4:8e:51:0e:0e:eb:7c:
9f:00:27:4d:98:16:3e:46:eb:a0:1e:79:2d:aa:7b:
3b:22:94:70:95:50:07:fc:4e:07:85:ad:7c:cd:96:
47:c3:cd:46:87:61:88:5c:ec:06:0a:15:a9:2f:93:
58:72:11:ea:e3:7d:0a:17:26:88:10:3f:55:ca:89:
c4:c8:ea:dd:12:07:0e:68:f9:6e:f3:20:ce:5f:d8:
aa:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:50:FD:33:0F:BE:F9:4C:82:F3:29:2C:F6:A2:63:C1:8A:6A:AB:70
X509v3 Authority Key Identifier:
keyid:AE:29:75:1A:0A:C8:1A:65:71:90:54:6E:A4:78:0C:D8:61:40:DC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ril1GgrIGmVxkFRupHgM2GFA3J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/75e36c-db1f-483e-b0ef-229051879b74/1/f1D9Mw---UyC8yks9qJjwYpqq3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/75e36c-db1f-483e-b0ef-229051879b74/1/ril1GgrIGmVxkFRupHgM2GFA3J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.0.0/22
Signature Algorithm: sha256WithRSAEncryption
00:47:27:03:da:c4:89:17:d0:b1:18:18:b9:2b:5a:42:bc:71:
b7:f5:b7:5b:0b:7f:a6:0b:79:91:8b:2c:01:92:cb:ca:5e:62:
9e:1a:96:9b:10:17:02:70:a8:db:2c:7e:1a:2c:70:56:4f:d7:
4c:be:f2:3c:4e:43:4a:cb:78:61:07:90:d2:9d:52:d7:e7:57:
18:3f:b5:27:27:bd:db:71:83:11:77:35:1d:20:37:9a:9e:b9:
21:d1:81:c1:1b:f6:5f:79:7d:25:34:9b:dc:d8:9a:b2:10:78:
85:a9:72:98:fd:9e:e0:48:a8:3f:dc:aa:6e:fb:ad:68:b6:83:
2d:9d:40:f4:a7:8f:46:96:50:53:27:ac:13:c2:01:93:d7:39:
df:1a:b7:3a:42:24:7b:39:df:98:36:1a:1d:1d:1d:92:df:b1:
ef:2d:98:dd:fc:6f:fe:cf:22:c0:8f:61:2c:ef:ad:da:aa:40:
f0:16:95:15:8f:e5:d9:4f:9d:c2:ef:5d:4d:02:d3:7f:ec:b7:
a5:31:1a:4d:31:4d:b0:d3:fb:c2:5e:59:19:29:ef:69:3b:da:
75:5d:3c:9e:1d:e5:e7:d6:ea:95:07:04:72:2b:7e:17:ca:84:
12:ee:76:a9:d9:d1:42:e9:94:39:7c:e6:63:c5:a2:d8:99:8f:
7e:5f:3f:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:15 2024 by rpki-client on console-fra.rpki-client.org